CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-1741

The tested version of Dominion Voting Systems ImageCast X has a Terminal Emulator application which could be leveraged by an attacker to gain elevated privileges on a device and/or install malicious c ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:16 | 阅读：55 | 回复：0
CVE-2022-1742

The tested version of Dominion Voting Systems ImageCast X allows for rebooting into Android Safe Mode, which allows an attacker to directly access the operating system. An attacker could leverage this ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:16 | 阅读：51 | 回复：0
CVE-2022-1743

The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution by specially crafted election definition files. An attacker could leverage this vulnerabil ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:16 | 阅读：47 | 回复：0
CVE-2022-1744

Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with elevated privileges by exploiting a system level service. An attacker could leverage this vulnerability ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:16 | 阅读：48 | 回复：0
CVE-2013-1916

In WordPress Plugin User Photo 0.9.4, when a photo is uploaded, it is only partially validated and it is possible to upload a backdoor on the server hosting WordPress. This backdoor can be called (exe ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：54 | 回复：0
CVE-2021-30651

A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：52 | 回复：0
CVE-2022-1517

LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：48 | 回复：0
CVE-2022-1518

LRM contains a directory traversal vulnerability that can allow a malicious actor to upload outside the intended directory structure.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：59 | 回复：0
CVE-2022-1519

LRM does not restrict the types of files that can be uploaded to the affected product. A malicious actor can upload any file type, including executable code that allows for a remote code exploit.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：47 | 回复：0
CVE-2022-1521

LRM does not implement authentication or authorization by default. A malicious actor can inject, replay, modify, and/or intercept sensitive data.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：48 | 回复：0
CVE-2022-1524

LRM version 2.4 and lower does not implement TLS encryption. A malicious actor can MITM attack sensitive data in-transit, including credentials.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：45 | 回复：0
CVE-2022-1666

The default password for the web application’s root user (the vendor’s private account) was weak and the MD5 hash was used to crack the password using a widely available open-source tool.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:15 | 阅读：46 | 回复：0
CVE-2021-41637

Weak access control permissions in MELAG FTP Server 2.2.0.4 allow the Everyone group to read the local FTP configuration file, which includes among other information the unencrypted passwords of all F ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：57 | 回复：0
CVE-2021-41638

The authentication checks of the MELAG FTP Server in version 2.2.0.4 are incomplete, which allows a remote attacker to access local files only by using a valid username.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：59 | 回复：0
CVE-2021-41639

MELAG FTP Server 2.2.0.4 stores unencrpyted passwords of FTP users in a local configuration file.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：56 | 回复：0
CVE-2022-32530

A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists that could cause users to be misled, hiding alarms, showing the wrong server connection option or the wrong control request when a m ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：50 | 回复：0
CVE-2021-40892

A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in validate-color v2.1.0 when handling crafted invalid rgb(a) strings.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：47 | 回复：0
CVE-2022-32990

An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service (DoS).……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：52 | 回复：0
CVE-2013-1891

In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:14 | 阅读：51 | 回复：0
CVE-2022-32139

In multiple CODESYS products, a low privileged remote attacker may craft a request, which cause an out-of-bounds read, resulting in a denial-of-service condition. User Interaction is not required.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：66 | 回复：0
CVE-2022-32140

Multiple CODESYS products are affected to a buffer overflow.A low privileged remote attacker may craft a request, which can cause a buffer copy without checking the size of the service, resulting in a ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：77 | 回复：0
CVE-2022-32141

Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an internal buffer over-read, resulting in a den ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：79 | 回复：0
CVE-2022-32142

Multiple CODESYS Products are prone to a out-of bounds read or write access. A low privileged remote attacker may craft a request with invalid offset, which can cause an out-of-bounds read or write ac ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：67 | 回复：0
CVE-2022-32143

In multiple CODESYS products, file download and upload function allows access to internal files in the working directory e.g. firmware files of the PLC. All requests are processed on the controller on ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：77 | 回复：0
CVE-2021-41634

A user enumeration vulnerability in MELAG FTP Server 2.2.0.4 allows an attacker to identify valid FTP usernames.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：61 | 回复：0
CVE-2021-41635

When installed as Windows service MELAG FTP Server 2.2.0.4 is run as SYSTEM user, which grants remote attackers to abuse misconfigurations or vulnerabilities with administrative access over the entire ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：64 | 回复：0
CVE-2021-41636

MELAG FTP Server 2.2.0.4 allows an attacker to use the CWD command to break out of the FTP servers root directory and operate on the entire operating system, while the access restrictions of the user ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:13 | 阅读：65 | 回复：0
CVE-2022-31803

In CODESYS Gateway Server V2 an insufficient check for the activity of TCP client connections allows an unauthenticated attacker to consume all available TCP connections and prevent legitimate users o ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：86 | 回复：0
CVE-2022-31804

The CODESYS Gateway Server V2 does not verifiy that the size of a request is within expected limits. An unauthenticated attacker may allocate an arbitrary amount of memory, which may lead to a crash o ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：108 | 回复：0
CVE-2022-31805

In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：95 | 回复：0
CVE-2022-31806

In CODESYS V2 PLCWinNT and Runtime Toolkit 32 in versions prior to V2.4.7.57 password protection is not enabled by default and there is no information or prompt to enable password protection at login ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：92 | 回复：0
CVE-2022-32136

In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a read access to an uninitialized pointer, resulting in a denial-of-service. User interaction is not requi ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：89 | 回复：0
CVE-2022-32137

In multiple CODESYS products, a low privileged remote attacker may craft a request, which may cause a heap-based buffer overflow, resulting in a denial-of-service condition or memory overwrite. User i ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：83 | 回复：0
CVE-2022-32138

In multiple CODESYS products, a remote attacker may craft a request which may cause an unexpected sign extension, resulting in a denial-of-service condition or memory overwrite.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:12 | 阅读：87 | 回复：0
CVE-2017-20095

A vulnerability classified as critical was found in Simple Ads Manager Plugin. This vulnerability affects unknown code. The manipulation leads to code injection. The attack can be initiated remotely.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:11 | 阅读：96 | 回复：0
CVE-2017-20096

A vulnerability classified as problematic has been found in WP-SpamFree Anti-Spam Plugin 2.1.1.4. This affects an unknown part. The manipulation leads to basic cross site scripting. It is possible to ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:11 | 阅读：104 | 回复：0
CVE-2017-20097

A vulnerability was found in WP-Filebase Download Manager Plugin 3.4.4. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross si ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:11 | 阅读：121 | 回复：0
CVE-2021-34604

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. It is a duplicate of CVE-2022-22514. Notes: none.……

作者：菜鸟教程小白 | 时间：2022-7-7 08:11 | 阅读：196 | 回复：0
CVE-2022-1965

Multiple products of CODESYS implement a improper error handling. A low privilege remote attacker may craft a request, which is not properly processed by the error handling. In consequence, the file r ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:11 | 阅读：138 | 回复：0
CVE-2022-31802

In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform authentication by ...……

作者：菜鸟教程小白 | 时间：2022-7-7 08:11 | 阅读：377 | 回复：0